Authentication feels weaker in PSK-mode:
* A server proves possession of a (short-term) shared key,
whereas, with certificate-based authentication,
* A server proves possession of a (long-term) private key;
should we consider PSK-mode authentication weaker than certificate-based
authentication?
On Wed, Jul 20, 2022 at 01:34:12PM +0200, Ben Smyth wrote:
> Authentication feels weaker in PSK-mode:
>
> * A server proves possession of a (short-term) shared key,
>
> whereas, with certificate-based authentication,
>
> * A server proves possession of a (long-term) private key;
>
> should we c
